Open AccessA robust smart card‒based anonymous user authentication protocol for wireless communications
Author(s) -
Wen Fengtong,
Susilo Willy,
Yang Guomin
Publication year - 2014
Publication title -
security and communication networks
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.446
H-Index - 43
eISSN - 1939-0122
pISSN - 1939-0114
DOI - 10.1002/sec.816
Subject(s) - computer science , authentication protocol , computer network , smart card , computer security , otway–rees protocol , authentication (law) , challenge handshake authentication protocol , protocol (science) , scalability , wireless , telecommunications , medicine , alternative medicine , pathology , database
ABSTRACT Anonymous user authentication is an important but challenging task for wireless communications. In a recent paper, Das proposed a smart card‒based anonymous user authentication protocol for wireless communications. The scheme can protect user privacy and is believed to be secure against a range of network attacks even if the secret information stored in the smart card is compromised. In this paper, we reanalyze the security of Das' scheme, and show that the scheme is in fact insecure against impersonation attacks. We then propose a new smart card‒based anonymous user authentication protocol for wireless communications. Compared with the existing schemes, our protocol uses a different user authentication mechanism, which does not require different entities to maintain a synchronized clock. We show that the proposed new protocol can provide stronger security and better efficiency and scalability than previous schemes.